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Detailed Action 

1 . A request for continued examination under 37 CFR 1.114, including ttie fee set 
forth in 37 CFR 1.17(e), was filed in this application after final rejection. Since this 
application is eligible for continued examination under 37 CFR 1.1 14, and the fee set 
forth in 37 CFR 1.17(e) has been timely paid, the finality of the previous Office action 
has been withdrawn pursuant to 37 CFR 1.114. Applicant's submission filed on 
03/10/07. 

2. Claims 1 - 3, 6 -13,16 - 20, 23 - 25, 27, 28 and 33 have been amended. 

Claim Rejections • 35 USC § 103 

3. The following Is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary sl<i!l in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 1 - 3, 6 -13,16 - 18, 20, 23 - 25, 27, 28 and 33 are rejected under 35 
U.S.C. 103(a) as being unpatentable over Donohue USPN 6,199,204 B1 In view of 
Banzhof US 7,000,247 B2. 
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Regarding claim 1 , Donohue discloses a processor-readable medium comprising 
processor-executable instructions configured for: 

receiving a binary signature (8:45 - 50, shows downloading file which contains a 
digital signature, 10:50 - 65, also discloses that the code is machine readable code, i.e. 
binary code); 

receiving a security patch (4:23 - 27, see patch and downloaded); 

identifying a vulnerable binary file on a computer based on the binary signature 
(8:45 - 60, see retrieved file160 is analyzed 240 based on digital signature); and 

updating the vulnerable binary file on the computer with the security patch (7:60 
- 62 and 5:7 - 12. see modifying existing program and patch and see error correction 
for vulnerable binary file). 

Although Donohue doesn't expressly disclose receiving the binary signature at 
the server computing device as well as the security patch and identifying from the 
server device the vulnerable binary file and then updating from the server device the 
vulnerable file on the client, Donohue does however disclose an updater component on 
a network which updates the file other computers on the network (i.e. client) and checks 
the digital signatures to verify it authenticity (8:45 - 60). Banzhof in an analogous art 
and similar configuration of vulnerability resolution discloses receiving binary signatures, 
identifying the vulnerable files (FIG. 5a - FIG 5b and all associated text, also see (2:5 - 
10). Therefore it would have been obvious to one of ordinary skill in the art at the time 
the invention was made to combine Donohue and Banzhof because "downloaded 
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signatures may then be used to address or resolve vulnerabilities on client machines 
having security vulnerabilities" (Banzhof, 2:10-12). 

Regarding claim 2, a processor-readable medium as recited in claim 1, wherein 
the identifying a vulnerable binary file located on a client computing device includes 
comparing a bit pattern of the binary signature against binary files located on the 
computer, the bit pattern associated with a security vulnerability (6:35 - 37, shows 
updater file is a binary file and 8:50 - 9:7, shows comparisons between product 
identifier and release number of retrieved file). 

Regarding claim 3, a processor-readable medium as recited in claim 1, wherein 
the updating the vulnerable binary file on the computer includes Installing the security 
patch on the computer (8:7 - 12, see modifying existing program and patch code). 

Regarding claim 6, a processor-readable medium as recited in claim 1, wherein 
the computer is a client computer and the receiving includes receiving the binary 
signature and the security patch from a distribution server configured to distribute to the 
client computer, binary signatures that identify vulnerable files and security patches 
configured to fix the vulnerable files (7:55 - 65, see server and patches and see 8:10 - 
15, for error correction). 

Regarding 7, a server comprising the processor-readable medium as recited in 
claim 1 , (7:55 - 65, see server). 
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Regarding claim. 8, Donohue anticipates a processor-readable medium 
comprising processor-executable instructions configured for: 

receiving a binary signature that identifies a security vulnerability in a binary file 
(8:45 - 50, shows downloading file which contains a digital signature, 10:50 - 65, also 
discloses that the code is machine readable code, i.e. binary code); 

receiving a security patch configured to fix the security vulnerability in the binary 
file (4:23 - 27, see patch and downloaded); and 

distributing the binary signature and the security patch to a plurality of servers 
(7:60 - 62 and 5:7 - 12, see modifying existing program and patch and see error 
correction for vulnerable binary file, also see 7:55 - 65, server). 

Regarding claim 9, a processor-readable medium as recited in claim 8, wherein 
the distributing includes: 

sending a notice to each of the plurality of servers regarding the security 
vulnerability and the available patch (13:15- 20); 

receiving a request to send the binary signature and the security patch (13:6 - 
10); and 

sending the binary signature and the security patch in response to the request 
(13:5 - 9, see complete update also see 6:6 - 10, see downloading from another 
computer). 
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Regarding claim 10, a distribution server comprising the processor-readable 
medium as recited in claim 8 (7:55 - 65. see server). 

Regarding claim 11, Donohue anticipates a processor-readable medium 
comprising processor-executable instructions configured for: 

receiving a binary signature from a server (8:45 - 53, shows the digital signature 
is analyzed when file is retrieved); 

searching for the binary signature in binary files (8:10 - 20 and 45 - 57); 

sending a request to the server for a security patch if a binary file is found that 
includes the binary signature (13:6 - 10); 

receiving the security patch from the server (4:23 - 27, see patch and 
downloaded); and 

updating the binary file with the security patch (7:60 - 62 and 5:7 - 12, see 
modifying existing program and patch and see error correction for vulnerable binary file, 
also see 7:55 - 65, server). 

Regarding claim 12, a client computer comprising the processor-readable 
medium as recited in claim 11, see reasoning above in claim 11 and for client see (8:18 
- 20, local computer 10). 

Regarding claim 13, Donohue discloses a method comprising: 
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receiving a binary signature (8:45 - 50, shows downloading file which contains a 
digital signature, 10:50 - 65, also discloses that the code is machine readable code, i.e. 
binary code); 

searching for a vulnerable file based on the binary signature (8:45 - 57); 

if a vulnerable file is found, requesting a security patch (8:10 - 14); and 
fixing the vulnerable file with the security patch (8:10 - 20 and 45 - 57). 

Although Donohue doesn't expressly disclose receiving the binary signature at 
the server computing device as well as the security patch and identifying from the 
server device the vulnerable binary file and then updating from the server device the 
vulnerable file on the client, Donohue does however disclose an updater component on 
a network which updates the file other computers on the network (i.e. client) and checks 
the digital signatures to verify it authenticity (8:45 - 60). Banzhof in an analogous art 
and similar configuration of vulnerability resolution discloses receiving binary signatures, 
identifying the vulnerable files (FIG. 5a - FIG 5b and all associated text, also see (2:5 - 
10). Therefore it would have been obvious to one of ordinary skill in the art at the time 
the invention was made to combine Donohue and Banzhof because "downloaded 
signatures may then be used to address or resolve vulnerabilities on client machines 
having security vulnerabilities" (Banzhof, 2:10-12). 

Regarding claim 16, a method as recited in claim 13, wherein the fixing includes 
installing the security patch on the client computer (7:43 - 45, shows the installation 
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Regarding claim 17, a method as recited in claim 13, wherein the searching 
includes comparing the binary signature to binary information on a storage medium of 
the client computer (6:35 - 37, shows updater file is a binary file and 8:50 - 9:7, shows 
comparisons between product identifier and release number of retrieved file also see 
6:7-10 for storage medium). 

Regarding claim 18 and 27, a method/computer as recited In. claim 17, wherein 
the binary information is selected from the group comprising: 

an operating system (6:7 - 10, shows a local computer system, hence an OS is 
inherent); 

an application program file (3:60 - 63, see installed computer programs); 
and a data file (3:60 - 63, see software update). 

Regarding claim 20, which recites similarly to claim 13, see rationale as 
previously address above. 

Regarding claim 23, the computer version of claim 1 1 , see rationale as 
previously addressed above. 
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Regarding claim 24, the sen/er version of claim 1 1 , see rationale as previously 
addressed above. 

Regarding claim 25, the computer version of claim 13, see rationale as 
previously addressed above. 

Regarding claim 28, the computer version of claim 1 , see rationale as previously 
addressed above. 

Regarding claim 29. the computer version of claim 6, see rationale as previously 
addressed above. 

I 

Regarding claim 30, Donohue anticipates a distribution server comprising: 

a database (FIG.1 , 40 and all associated text); and 

a distribution module configured to receive a binary signature and a security 
patch, store the binary signature and the security patch in the database, and distribute 
the binary signature and the security patch to a plurality of servers (8:45 - 60, see 
retrieved file160 is analyzed 240 based on digital signature also see 7:60 - 62 and 5:7 - 
12, see modifying existing program and patch and see error correction for vulnerable 
binary file, also see 7:55 - 65, server). 
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Regarding claim 31 , a distribution server as, recited in claim 30, wlierein the 
distribution module is further configured to receive a request from a server for the binary 
signature and the security patch and to distribute the binary signature and the security 
patch to the server in response to the request (8:45 - 60, see retrieved filel 60 is 
analyzed 240 based on digital signature). 

Regarding claim 32, the server version of claim 1 1 , see rationale as previously 
addressed above. 

Regarding claim 33, a server as recited in claim 32, further comprising: 

a database (FIG. i, 40 and all associated text); and 

the scan module further configured to receive the binary signature and the 
security patch from a distribution server and to store the binary signature and the 
security patch in the database (8:45 - 60, see analyzed 240 and digital signature). 

5. Claim 19 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Donohue USPN 6.199,204 B1 in view of Banzhof US 7,000,247 B2 as applied in claim 
1 7 in view of Gabel 5,930,504. 

Regarding claim 19, Donohue as modified discloses all the claimed limitations as 
applied in claim 17 above including: 
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A hard disk (6:1 - 10, see system memory), a magnetic floppy disk (6:1 - 10, see 
diskette), an optical disk (6:7 - 10, see CD) and a 
network-attached storage (6:18 - 20, see repository). 

Dpnohue as modified by Banhof doesn't expressly disclose a flash memory card 
and an electrically erasable programmable read-only memory. However Gabel in an 
analogous art and similar configuration of updating/patching software discloses the use 
of electrically erasable programmable read pnly memory (flash EEPROM) and states 
that use of "flash memory permits non-invasive updating procedures so that the 
nonvolatile memory can be updated from an update file" (1:60 - 65). Therefore it would 
have been obvious to one of ordinary skill in the art at the time the invention was made 
to combine Donohue, and Banzhof with and Gabel because, it would enable updating 
from an update file. 

Response to Arguments 

6. Applicant's arguments with respect to claims 1 - 3, 6 -13,16 - 18, 20, 23 - 25, 
27, 28 and 33 have been considered but are moot in view of the new ground(s) of 
rejection. 
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7. Any inquiry concerning tiiis communication or earlier communications from the 
examiner should be directed to Chuck Kendall whose telephone number is 571-272- 
3698. The examiner can normally be reached on 10:00 am - 6:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Tuan Dam can be reached on 571-272-3695. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Infonnation regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more infonnation about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-21 7-91 97 (toll-free). 




